---

CVE-2017-5180 - log back

CVE-2017-5180 created at 25 Sep 2019 19:31:40
Severity	+ High
Remote	+ Local
Type	+ Privilege escalation
Description	+ A race condition vulnerability has been discovered in firejail. An attacker that is able to symlink to arbitrary binaries or libraries can trick firejail into running them with EUID 0, resulting in escalation of privilege.
References	+ http://www.openwall.com/lists/oss-security/2017/01/04/1 + https://github.com/netblue30/firejail/issues/1020
Notes	+ http://seclists.org/oss-sec/2017/q1/21